Gentoo Archives: gentoo-security

From: Bob Crain <robert.crain@×××××××.net>
To: gentoo-security@l.g.o
Subject: RE: [gentoo-security] firewall suggestions?
Date: Fri, 09 Jan 2004 03:16:03
Message-Id: 001a01c3d65e$9fb38c80$0b00a8c0@crichton
In Reply to: Re: [gentoo-security] firewall suggestions? by Frank Gruellich
Back to stealthing...  It makes sense to me NOT to DROP... but what
about stealthing like this:

I've got DSL, and I know the IP of my gateway.  When I want to appear
invisible, I respond to unwanted packets with a 'REJECT - ICMP host
unreachable' that has a spoofed source address of my gateway?  That way,
it looks like the gateway responded and I don't exist!   

Whadduya think?


gentoo-security@g.o mailing list


Subject Author
Re: [gentoo-security] firewall suggestions? Frank Gruellich <frank@××××××××××××.org>